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WHAT IS CLAIMED IS: 

1 . A method in a data processing system for requesting a digital 
certificate from a certificate authority and archiving an encryption key outside of the 
certificate authority, comprising: 

receiving a request from a user for a digital certificate; and 
receiving an indication of proof of archival of the user's encryption key 
associated with the request, wherein the user's encryption key is archived under 
control of an entity other than the certificate authority. 

10 2. The method of claim 1 , further comprising the step of sending a digital 

certificate associated with the user in response to the received request and 
indication of proof of archival. 
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3. The method of claim 1 , further comprising the step of receiving the 
user's encryption key. 
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4. The method of claim 3, wherein the encryption key is encrypted during 
transmission, and wherein the method further comprises the step of decrypting the 
encrypted encryption key. 



The method of claim 3, wherein the encryption key is the user's private 



key. 
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6. The method of claim 4, wherein the data processing system comprises 
a data recovery manager that receives and manages archiving of the encryption key, 
and wherein the encryption key is encrypted during transmission using the data 
recovery manager's public transport key. 

7. The method of claim 1 , wherein the indication of proof of archival is 
digitally signed, and wherein the method further comprises the step of verifying a 
digital signature on the indication of proof of archival. 

8. The method of claim 7, wherein the data processing system includes a 
data recovery manager that receives and manages archiving of the encryption key, 
and wherein the indication of proof of archival is digitally signed by the data recovery 
manager. 
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9. The method of claim 1 , wherein the user's encryption key is archived 
under control of the user. 
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10. A method in a data processing system for requesting a digital 
certificate from a certificate authority and archiving an encryption key outside of the 
certificate authority, comprising: 

sending a request for a digital certificate, the request having an indication of 
proof of archival of an encryption key for the user; and 

receiving a digital certificate in response to the request. 

1 1 . The method of claim 10, further comprising the step of digitally signing 
the indication of proof of archival of the encryption key. 
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12. A method in a data processing system for archiving an encryption key 
by an entity other than a certificate authority, comprising: 

receiving an encryption key for archiving; 
archiving the received encryption key; 

creating an indication of proof of archival of the received encryption key; and 
sending the indication of proof of archival. 

13. The method of claim 12, further comprising the step of digitally signing 
the indication proof of archival. 

14. The method of claim 13, wherein the archiving step further comprises 
the step of archiving the received encryption key under control of a user. 
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1 5. A data processing system for requesting a digital certificate from a 
certificate authority and archiving an encryption key outside of the certificate 
authority, comprising: 

a memory having program instructions; and 

a processor configured to execute the program instructions to receive a 
request from a user for a digital certificate, and receive an indication of proof of 
archival of the user's encryption key associated with the request, wherein the user's 
encryption key is archived under control of an entity other than the certificate 
authority. 

16. A data processing system for requesting a digital certificate from a 
certificate authority and archiving an encryption key outside of the certificate 
authority, comprising: 

a memory having program instructions; and 

a processor configured to execute the program instructions to send a request 
for a digital certificate, the request having an indication of proof of archival of an 
encryption key for the user, and receive a digital certificate in response to the 
request. 
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1 7. A data processing system for archiving an encryption key by an entity 
other than a certificate authority, comprising: 

a memory having program instructions; and 

a processor configured to execute the program instructions to receive an 
encryption key for archiving, archive the received encryption key, create an 
indication of proof of archival of the received encryption key, and send the indication 
of proof of archival. 
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1 8. A data processing system for requesting a digital certificate from a 
certificate authority and archiving an encryption key under control of an entity other 
than the certificate authority, comprising: 

a registration manager configured to receive a digital certificate request 
including a user's encryption key, send the user's encryption key, and in response 
receive an indication of proof of archival; 

a data recovery manager configured to receive the user's encryption key, 
send the user's encryption key to a database controlled by an entity other than the 
certificate authority for archiving, create an indication of proof archival and send the 
indication of proof of archival; 

a certificate authority configured to issue a digital certificate when it is 
determined that an indication proof of archival was received; and 

a database, under control of an entity other than the certificate authority, 
configured to receive and archive the user's encryption key. 



15 



LAW OFFICES 

Finnecan, Henderson, 
Farabow, Garrett, 

8 DUNNER, L.L.P. 

I300 I STREET, N. W. 
WASHINGTON, DC 20005 
202-408--4000 



25 



Attorney Docket No. 06502.0336 



19. A computer-readable medium containing instructions for controlling a 
data processing system to perform a method for requesting a digital certificate from 
a certificate authority and archiving an encryption key outside of the certificate 
authority, the method comprising the steps of: 

receiving a request from a user for a digital certificate; and 
receiving an indication of proof of archival of the user's encryption key 
associated with the request, wherein the user's encryption key is archived under 
control of an entity other than the certificate authority. 
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10 20. The computer-readable medium of claim 19, wherein the method 

further comprises the step of sending a digital certificate associated with the user in 
response to the received request and indication of proof of archival. 
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21 . The computer-readable medium of claim 1 9, wherein the method 
further comprises the step of receiving the user's encryption key. 
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22. The computer-readable medium of claim 21 , wherein the encryption 
key is encrypted during transmission, and wherein the method further comprises the 
step of decrypting the encrypted encryption key. 

23. The computer-readable medium of claim 21 , wherein the encryption 
key is the user's private key. 
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24. The computer-readable medium of claim 22, wherein the data 
processing system comprises a data recovery manager that receives and manages 
archiving of the encryption key, and wherein the encryption key is encrypted during 
transmission using the data recovery manager's public transport key. 

25. The computer-readable medium of claim 1 9, wherein the indication of 
proof of archival is digitally signed, and wherein the method further comprises the . 
step of verifying a digital signature on the indication of proof of archival. 



w 10 26. The computer-readable medium of claim 25, wherein the data 

processing system includes a data recovery manager that receives and manages 
archiving of the encryption key, and wherein the indication of proof of archival is 
digitally signed by the data recovery manager. 

15 27. The computer-readable medium of claim 19, wherein the user's 

encryption key is archived under control of the user. 
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28. A computer-readable medium containing instructions for controlling a 
data processing system to perform a method for requesting a digital certificate from 
a certificate authority and archiving an encryption key outside of the certificate 
authority, the method comprising the steps of: 

sending a request for a digital certificate, the request having an indication of 
proof of archival of an encryption key for the user; and 

receiving a digital certificate in response to the request. 
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29. The computer-readable medium of claim 28, wherein the method 
further comprises the step of digitally signing the indication of proof of archival of the 
encryption key. 
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30. A computer-readable medium containing instructions for controlling a 
data processing system to perform a method for archiving an encryption key by an 
entity other than a certificate authority, the method comprising the steps of: 

receiving an encryption key for archiving; 

archiving the received encryption key; 

creating an indication of proof of archival of the received encryption key; and 
sending the indication of proof of archival. 
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31 . The computer-readable medium of claim 30, wherein the method 
further comprises the step of digitally signing the indication proof of archival. 



32. The computer-readable medium of claim 31 , wherein the archiving 
step further comprises the step of archiving the received encryption key under 
control of a user. 
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33. A data processing system for requesting a digital certificate from a 

certificate authority and archiving an encryption key outside of the certificate 

authority, comprising: 

means for receiving a request from a user for a digital certificate; and 
means for receiving an indication of proof of archival of the user's encryption 

key associated with the request, wherein the user's encryption key is archived under 

control of an entity other than the certificate authority. 
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